summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-11 13:47:54 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-22 10:01:03 +0100
commit6f647a9e06c4ea063ef3adb9600e0590aa908267 (patch)
treee3aee9ffdb4ea171301f538ce61b74f8f7bb34f8
parent14a4513aff970a74bc7b928bb13ad0d6a3f5612b (diff)
downloadpoky-6f647a9e06c4ea063ef3adb9600e0590aa908267.tar.gz
poky-6f647a9e06c4ea063ef3adb9600e0590aa908267.tar.bz2
poky-6f647a9e06c4ea063ef3adb9600e0590aa908267.zip
bluez: Exclude CVE-2020-12352 CVE-2020-24490 from cve-check
These CVEs are fixed with kernel changes and don't affect the bluez recipe. (From OE-Core rev: 21b6975cc6c785aa3bf7f7d4ea2400e11f1800bd) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-connectivity/bluez5/bluez5_5.56.bb3
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.56.bb b/meta/recipes-connectivity/bluez5/bluez5_5.56.bb
index 676cb2dbb2..ae0f72b678 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.56.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.56.bb
@@ -3,6 +3,9 @@ require bluez5.inc
SRC_URI[md5sum] = "e6c51b2aefa7c56ff072819a78611fa5"
SRC_URI[sha256sum] = "59c4dba9fc8aae2a6a5f8f12f19bc1b0c2dc27355c7ca3123eed3fe6bd7d0b9d"
+# These issues have kernel fixes rather than bluez fixes so exclude here
+CVE_CHECK_WHITELIST += "CVE-2020-12352 CVE-2020-24490"
+
# noinst programs in Makefile.tools that are conditional on READLINE
# support
NOINST_TOOLS_READLINE ?= " \